Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/S2W5Ic62VOvEgp79G_Poi7Ylvxo.roa
File: S2W5Ic62VOvEgp79G_Poi7Ylvxo.roa (raw, json)
Hash identifier: qG/ofP4Q7jy35EUj/S8rwO61LESPc9ZvwxLkUxUTCMA=
Subject key identifier: 4B:65:B9:21:CE:B6:54:EB:C4:82:9E:FD:1B:F3:E8:8B:B6:25:BF:1A
Certificate issuer: /CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Certificate serial: 0186FE969681FD8D146AC56328D4BC00CC64
Authority key identifier: 1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/S2W5Ic62VOvEgp79G_Poi7Ylvxo.roa
Signing time: Mon 20 Mar 2023 10:35:27 +0000
ROA not before: Mon 20 Mar 2023 10:35:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204829
IP address blocks: 2a0a:280:2400::/40 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:96:96:81:fd:8d:14:6a:c5:63:28:d4:bc:00:cc:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9f21ba04e5e3077b391e3d48ff5b0a50b3369f
Validity
Not Before: Mar 20 10:35:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b65b921ceb654ebc4829efd1bf3e88bb625bf1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:07:40:66:77:cd:cc:9b:49:9c:62:b8:87:09:
19:9b:01:7b:2a:8d:95:5d:55:96:a4:19:46:fd:19:
fd:70:62:4b:e9:bb:57:fa:3f:36:a0:3e:14:4a:e4:
94:e1:b2:91:12:21:e2:65:1c:29:ce:8f:db:7f:75:
59:bf:b0:25:82:00:12:cc:cb:4b:2e:9d:64:f4:79:
a2:5f:ec:bb:74:48:58:3f:79:64:7c:d6:cf:cf:ad:
71:67:c2:84:0f:05:23:98:ce:72:13:74:42:23:52:
39:87:0d:e9:71:34:93:a7:05:61:68:a6:e8:5e:3f:
18:0b:95:ff:83:92:ae:7d:e8:2f:cc:45:5d:a8:36:
28:e7:a0:af:ee:00:90:2e:a7:14:9c:60:b8:9c:1f:
ff:a6:5b:96:fd:d4:df:a9:cb:32:3d:7b:86:70:40:
52:13:e6:82:48:04:ee:6c:c3:cc:57:93:99:cd:e1:
60:fa:d2:5e:46:da:7c:b1:0b:94:12:b7:ab:c7:f7:
51:5f:b0:18:c3:0d:8c:ac:4a:03:6d:ec:e6:21:f7:
aa:36:6f:fb:24:d6:b4:f7:fc:3f:9f:8c:a3:b2:da:
bc:01:e4:4a:e8:57:69:0c:3a:29:53:53:bf:31:dc:
fb:c5:3e:d4:b6:43:26:9e:90:be:93:b4:ac:c6:7f:
d6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:65:B9:21:CE:B6:54:EB:C4:82:9E:FD:1B:F3:E8:8B:B6:25:BF:1A
X509v3 Authority Key Identifier:
keyid:1B:9F:21:BA:04:E5:E3:07:7B:39:1E:3D:48:FF:5B:0A:50:B3:36:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G58hugTl4wd7OR49SP9bClCzNp8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/S2W5Ic62VOvEgp79G_Poi7Ylvxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/f67a78-183d-494a-995e-f51c5fb3df9a/1/G58hugTl4wd7OR49SP9bClCzNp8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0a:280:2400::/40
Signature Algorithm: sha256WithRSAEncryption
9c:af:4d:42:38:2a:af:91:68:93:be:67:62:e8:a5:8e:c0:f0:
ac:5b:5d:1e:98:fc:8d:55:20:36:1f:42:09:43:e6:2b:42:0e:
b9:f0:6f:79:62:b2:a2:e3:66:c2:16:4b:ff:9d:89:b6:58:ab:
18:69:01:63:c9:3d:49:2e:b0:91:db:8c:67:da:5b:b6:d5:bf:
9c:c8:39:cf:dc:52:ff:4d:bd:6c:7a:b6:72:2a:e0:22:66:da:
81:7f:1c:2a:27:0f:17:94:7f:3f:83:ff:d5:b5:f5:1d:12:ac:
80:ed:d8:0d:fd:66:cc:b2:4a:10:6b:47:7b:da:b4:ab:5d:ae:
4d:76:da:bd:85:e2:85:86:4a:23:2d:19:0a:94:c5:1b:d4:c9:
a5:36:d7:dd:23:07:cb:3c:08:39:1f:fc:e6:de:22:3e:f1:f4:
9e:28:a8:b5:6b:8e:ea:43:a5:2c:2e:8f:20:85:f8:09:e6:f1:
9c:1e:b0:d8:c0:67:a0:d8:52:40:4d:f8:36:dd:ba:61:e0:27:
91:64:e0:75:13:b2:df:8c:7b:7d:9a:85:ad:8b:2b:4f:7f:7e:
fc:c9:e8:eb:6e:f0:f0:53:59:c4:23:34:9e:3c:44:b7:44:f5:
64:ef:c3:ca:fe:ee:dd:bc:bb:e8:d0:e6:22:71:18:98:f9:47:
32:ab:d2:11
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgISAYb+lpaB/Y0UasVjKNS8AMxkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiOWYyMWJhMDRlNWUzMDc3YjM5MWUzZDQ4ZmY1YjBhNTBi
MzM2OWYwHhcNMjMwMzIwMTAzNTI3WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0YjY1YjkyMWNlYjY1NGViYzQ4MjllZmQxYmYzZTg4YmI2MjViZjFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjQdAZnfNzJtJnGK4hwkZmwF7Ko2V
XVWWpBlG/Rn9cGJL6btX+j82oD4USuSU4bKREiHiZRwpzo/bf3VZv7AlggASzMtL
Lp1k9HmiX+y7dEhYP3lkfNbPz61xZ8KEDwUjmM5yE3RCI1I5hw3pcTSTpwVhaKbo
Xj8YC5X/g5KufegvzEVdqDYo56Cv7gCQLqcUnGC4nB//pluW/dTfqcsyPXuGcEBS
E+aCSATubMPMV5OZzeFg+tJeRtp8sQuUErerx/dRX7AYww2MrEoDbezmIfeqNm/7
JNa09/w/n4yjstq8AeRK6FdpDDopU1O/Mdz7xT7UtkMmnpC+k7Ssxn/W5QIDAQAB
o4ICCzCCAgcwHQYDVR0OBBYEFEtluSHOtlTrxIKe/Rvz6Iu2Jb8aMB8GA1UdIwQY
MBaAFBufIboE5eMHezkePUj/WwpQszafMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUt
ZjUxYzVmYjNkZjlhLzEvUzJXNUljNjJWT3ZFZ3A3OUdfUG9pN1lsdnhvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi9mNjdhNzgtMTgzZC00OTRhLTk5NWUtZjUxYzVmYjNkZjlh
LzEvRzU4aHVnVGw0d2Q3T1I0OVNQOWJDbEN6TnA4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKgoCgCQw
DQYJKoZIhvcNAQELBQADggEBAJyvTUI4Kq+RaJO+Z2LopY7A8KxbXR6Y/I1VIDYf
QglD5itCDrnwb3lisqLjZsIWS/+dibZYqxhpAWPJPUkusJHbjGfaW7bVv5zIOc/c
Uv9NvWx6tnIq4CJm2oF/HConDxeUfz+D/9W19R0SrIDt2A39ZsyyShBrR3vatKtd
rk122r2F4oWGSiMtGQqUxRvUyaU2190jB8s8CDkf/ObeIj7x9J4oqLVrjupDpSwu
jyCF+Anm8ZwesNjAZ6DYUkBN+DbdumHgJ5Fk4HUTst+Me32aha2LK09/fvzJ6Otu
8PBTWcQjNJ48RLdE9WTvw8r+7t28u+jQ5iJxGJj5RzKr0hE=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:22 2024 by rpki-client on console-fra.rpki-client.org